IDP2 to IDP3 relying-party.xml issues

sherrera sherrera at bradley.edu
Fri Aug 31 17:12:14 EDT 2018 

Let me start off with I'm a newbie to shib. I've been working on building a
new server on Ubuntu 16.04 with IDP version 3.3.3 and have been testing
against the testshib site. So far it looks like I was able to migrate most
of the old setting to the new platform. Tweaking them to fit the newer
style. My problem is the relying-party.xml. I've separated out the metadata
stuff to the metadata.providers.xml but what I can not figure out is how to
convert the following: 

<rp:RelyingParty id="https://shib.oclc.org/shibboleth"
provider="https://removed/idp/shibboleth"
defaultSigningCredentialRef="IdPCredential"
nameIDFormatPrecedence="persistent">
        <rp:ProfileConfiguration xsi:type="saml:SAML2SSOProfile"
includeAttributeStatement="true" assertionLifetime="PT5M"
assertionProxyCount="0" signResponses="never" signAssertions="always"
encryptAssertions="conditional" encryptNameIds="never"
includeConditionsNotBefore="true"/>
    </rp:RelyingParty>

What I have come up with is:

<bean parent="RelyingPartyByName"
c:relyingPartyIds="shib.oclc.org/shibboleth">
            <property name="profileConfigurations">
                <list>
                    <bean parent="SAML2.SSO"
p:nameIDFormatPrecedence="urn:oasis:names:tc:SAML:1.1:nameid-format:persistent"
p:includeAttributeStatement="true" p:assertionLifetime="PT5M"
p:assertionProxyCount="0" p:signResponses="false" p:signAssertions="always"
p:encryptAssertions="conditional" p:encryptNameIds="never"
p:includeConditionsNotBefore="true" />
                </list>
            </property>
        </bean>

The error I get is:

WARN
[net.shibboleth.ext.spring.context.FilesystemGenericApplicationContext:551]
- Exception encountered during context initialization - cancelling refresh
attempt: org.springframework.beans.factory.BeanCreationException: Error
creating bean with name 'shibboleth.RelyingPartyOverrides': Cannot create
inner bean 'RelyingPartyByName$child#e76de34' of type
[net.shibboleth.idp.saml.relyingparty.impl.RelyingPartyConfigurationSupport]
while setting bean property 'sourceList' with key [0]; nested exception is
org.springframework.beans.factory.BeanCreationException: Error creating bean
with name 'RelyingPartyByName$child#e76de34' defined in file
[/opt/shibboleth-idp/conf/relying-party.xml]: Cannot create inner bean
'SAML2.SSO$child#72c97b8f' of type
[net.shibboleth.idp.saml.saml2.profile.config.BrowserSSOProfileConfiguration]
while setting bean property 'profileConfigurations' with key [0]; nested
exception is org.springframework.beans.factory.BeanCreationException: Error
creating bean with name 'SAML2.SSO$child#72c97b8f' defined in file
[/opt/shibboleth-idp/conf/relying-party.xml]: Error setting property values;
nested exception is org.springframework.beans.NotWritablePropertyException:
Invalid property 'assertionProxyCount' of bean class
[net.shibboleth.idp.saml.saml2.profile.config.BrowserSSOProfileConfiguration]:
Bean property 'assertionProxyCount' is not writable or has an invalid setter
method. Does the parameter type of the setter match the return type of the
getter?
2018-08-31 16:10:18,952 - ERROR
[net.shibboleth.utilities.java.support.service.AbstractReloadableService:181]
- Service 'shibboleth.RelyingPartyResolverService': Initial load failed
net.shibboleth.utilities.java.support.service.ServiceException:
org.springframework.beans.factory.BeanCreationException: Error creating bean
with name 'shibboleth.RelyingPartyOverrides': Cannot create inner bean
'RelyingPartyByName$child#e76de34' of type
[net.shibboleth.idp.saml.relyingparty.impl.RelyingPartyConfigurationSupport]
while setting bean property 'sourceList' with key [0]; nested exception is
org.springframework.beans.factory.BeanCreationException: Error creating bean
with name 'RelyingPartyByName$child#e76de34' defined in file
[/opt/shibboleth-idp/conf/relying-party.xml]: Cannot create inner bean
'SAML2.SSO$child#72c97b8f' of type
[net.shibboleth.idp.saml.saml2.profile.config.BrowserSSOProfileConfiguration]
while setting bean property 'profileConfigurations' with key [0]; nested
exception is org.springframework.beans.factory.BeanCreationException: Error
creating bean with name 'SAML2.SSO$child#72c97b8f' defined in file
[/opt/shibboleth-idp/conf/relying-party.xml]: Error setting property values;
nested exception is org.springframework.beans.NotWritablePropertyException:
Invalid property 'assertionProxyCount' of bean class
[net.shibboleth.idp.saml.saml2.profile.config.BrowserSSOProfileConfiguration]:
Bean property 'assertionProxyCount' is not writable or has an invalid setter
method. Does the parameter type of the setter match the return type of the
getter?
	at
net.shibboleth.ext.spring.service.ReloadableSpringService.doReload(ReloadableSpringService.java:336)



Any help would be greatly appreciated. Thank you.



--
Sent from: http://shibboleth.1660669.n2.nabble.com/Shibboleth-Users-f1660767.html

More information about the users mailing list